index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
crypto
/
x509
Age
Commit message (
Expand
)
Author
2018-10-18
Apply self-imposed path length also to root CAs
Viktor Dukhovni
2018-10-18
Only CA certificates can be self-issued
Viktor Dukhovni
2018-09-27
Merge 1.0.2 setuid calls to getenv(3) safety.
Pauli
2018-05-21
Fix undefined behaviour in X509_NAME_cmp()
Matt Caswell
2018-05-05
X509 time: tighten validation per RFC 5280
Emilia Kasper
2018-04-19
Don't crash if there are no trusted certs
Matt Caswell
2018-04-19
X509_cmp_time: only return 1, 0, -1.
Emilia Kasper
2018-02-21
X509V3_EXT_add_nconf_sk, X509v3_add_ext: fix errors handling
Pavel Kopyl
2017-12-08
Standardize syntax around sizeof(foo)
Rich Salz
2017-08-07
Avoid surpising password dialog in X509 file lookup.
Bernd Edlinger
2017-08-04
Add a missing CRYPTO_w_unlock in get_cert_by_subject
Bernd Edlinger
2017-06-10
Remove needless type casting.
Rich Salz
2017-03-13
Fix a memory leak in X509_STORE_add_cert/crl error handling.
Bernd Edlinger
2017-02-06
Combined patch for the more or less obvious issues
Bernd Edlinger
2016-09-26
Add some sanity checks when checking CRL scores
Matt Caswell
2016-09-11
Fix memory leak on error.
Dr. Stephen Henson
2016-08-26
Fix a few leaks in X509_REQ_to_X509.
FdaSilvaYY
2016-08-19
Fix NULL-return checks in 1.0.2
Rich Salz
2016-08-03
Don't check any revocation info on proxy certificates
Richard Levitte
2016-07-29
Fix CRL time comparison.
Dr. Stephen Henson
2016-07-22
Use newest CRL.
Dr. Stephen Henson
2016-06-29
Fix proxy certificate pathlength verification
Richard Levitte
2016-06-29
Check that the subject name in a proxy cert complies to RFC 3820
Richard Levitte
2016-06-10
Fix an error path leak in int X509_ATTRIBUTE_set1_data()
Matt Caswell
2016-05-19
Ensure verify error is set when X509_verify_cert() fails
Viktor Dukhovni
2016-05-17
Remove repeated condition from if in X509_NAME_oneline
Matt Caswell
2016-05-03
Prevent EBCDIC overread for very long strings
Matt Caswell
2016-04-29
Add checks to X509_NAME_oneline()
Dr. Stephen Henson
2016-04-29
Sanity check buffer length.
Dr. Stephen Henson
2016-02-05
Fix missing ok=0 with locally blacklisted CAs
Viktor Dukhovni
2016-01-17
Empty SNI names are not valid
Viktor Dukhovni
2016-01-02
Fix X509_STORE_CTX_cleanup()
Viktor Dukhovni
2015-10-23
Remove useless code
Alessandro Ghedini
2015-09-15
RT4044: Remove .cvsignore files.
Rich Salz
2015-09-02
Better handling of verify param id peername field
Viktor Dukhovni
2015-08-28
GH354: Memory leak fixes
Alessandro Ghedini
2015-08-14
Fix 1.0.2 build break
Rich Salz
2015-08-13
GH364: Free memory on an error path
Ismo Puustinen
2015-07-07
Reject calls to X509_verify_cert that have not been reinitialised
Matt Caswell
2015-07-07
Add test for CVE-2015-1793
Matt Caswell
2015-07-07
Fix alternate chains certificate forgery issue
Matt Caswell
2015-06-11
Fix length checks in X509_cmp_time to avoid out-of-bounds reads.
Emilia Kasper
2015-05-23
Fix the update target and remove duplicate file updates
Richard Levitte
2015-05-20
Correctly check for export size limit
Kurt Roeckx
2015-05-13
Add NULL checks from master
Rich Salz
2015-05-04
Fix cut/paste error
Rich Salz
2015-05-02
RT3776: Wrong size for malloc
Rich Salz
2015-04-29
Revert "Fix verify algorithm."
Matt Caswell
2015-04-20
Fix verify algorithm.
Dr. Stephen Henson
2015-04-20
Add flag to inhibit checking for alternate certificate chains. Setting this
Matt Caswell
[next]